Filter
Top Products
Policies and Filters
Syntax
Use the following CLI commands or Web management interface panels to configure TCP/UDP access policies.
Table C.7: TCP/UDP Access Policies
CLI syntax Web management links
HP9300(config)# ip access-policy <policy-num> permit | deny
<ip-addr> <ip-mask> | any <ip-addr> <ip-mask> | any tcp | udp
[<operator> [<tcp/udp-port-num>]] [log]
HP9300(config-if-1/1)# ip access-policy-group in | out <policy-list>
HP9300(config) ip policy <num> priority <0-7> tcp | udp
<tcp/udp-port-num> global | local
HP9300(config-if-1/1) ip-policy <num>
Configure->IP->Access Policy
Filters
A filter is a set of comparison values and an action. If a packet matches the set of values in the filter, the device
takes the action specified in the filter. The routing switches and switch provide filters for Layer 2, Layer 3, and
Layer 4. A filter looks at the appropriate fields in a packet to compare information related to one of the layers. For
example, MAC filters look at the source and destination MAC address and, optionally, at the encapsulation
information. IPX filters look at the source and destination network and socket information but do not look at the
MAC information.
The following table lists the various types of filters you can configure on the routing switches and the switch.
Table C.8: Filters
Filter Type Supported on... See page...
Routing
Switch
Switch
Layer 2 Filters 12
MAC filters X X 12
Broadcast filters X X 13
Multicast filters X X 14
Address-lock filters X X 14
Layer 3 Filters 16
IP forwarding filters (same as IP access policies) X 7
IP/RIP route filters X 16
IP/RIP neighbor filters X 17
IPX forwarding filters X 19
IPX RIP filters X 19
IPX SAP filters X 20
C - 11